Info
- 8 posts
- 4 voices
- Started 4 years ago by Ben L.
- Latest reply from fel64
Can someone make a ticket for me?
-
I can't seem to make a ticket on the trac. Here's the contents of what I want to say:
With the way bbPress is currently set up, an Administrator could, just by editing the profile of a Key Master, remove the Key Master privileges. I suggest editing Key Master profiles cannot be done by anyone but Key Masters, or the administration portion of the profile should not be shown to anyone lower than Key Master if they are editing the profile of a Key Master. -
- Posted 4 years ago #
You must login, then click on New Ticket.
WordPress Support/Extend/Trac and bbPress Forums/Extend/Trac all can be logged in with the same username and password.
-
- Posted 4 years ago #
I created the ticket for you:
http://trac.bbpress.org/ticket/767 -
I think changing
if ( !bb_current_user_can( 'edit_user', $user_id ) ) { $sendto = bb_get_option('uri'); wp_redirect( $sendto ); }in
profile-edit.phpto
if ( !bb_current_user_can( 'edit_user', $user_id ) || (!bb_current_user_can('use_keys') && $user->has_cap('use_keys')) ) { $sendto = bb_get_option('uri'); wp_redirect( $sendto ); }would fix the problem.
-
Should be fixed I thought. http://trac.bbpress.org/changeset/903
-
fel64 wrote:
Should be fixed I thought. http://trac.bbpress.org/changeset/903That only prevents keymasters from demoting themselves. What I want them to prevent is administrators demoting keymasters.
-
You must log in to post.
